Linux-Networking Digest #205, Volume #12 Thu, 12 Aug 99 20:13:52 EDT
Contents:
Re: PPTP or IPSec Liunx VPN (Eric deRiel)
Re: Running X remotely (John Thompson)
tulip switches to AUI media when network down ([EMAIL PROTECTED])
Re: IPIP Tunnelling "Network is Unreachable" (Guy Lancaster)
Weird colors in X and Modem Problem (Sean)
all networking stops working for no reason (Scott Shoemaker)
Summary: networking core dumps ([EMAIL PROTECTED])
Re: route problem: Can't add gateway address (Gernot Fink)
Compaq Deskpro DP2000 ("Robert Mullen")
Re: Local network (dmalcolm)
Re: route problem: Can't add gateway address ([EMAIL PROTECTED])
3COM / USR fan ? ("Marshall")
Setting up Linux PPP to connect to Prodigy Internet ("Cameron Newton")
Re: send mail from linux from behind a firewall (dmalcolm)
Re: how does my dns ("sham khalil")
Re: Grabbing IP# automatically (dmalcolm)
Re: IP Chains specific rule ("Robert C. Paulsen, Jr.")
ethernet problems and AMD79C974 (Jonathan Bowman)
----------------------------------------------------------------------------
Subject: Re: PPTP or IPSec Liunx VPN
From: Eric deRiel <[EMAIL PROTECTED]>
Date: Thu, 12 Aug 1999 21:13:21 GMT
Derek Shaw <[EMAIL PROTECTED]> writes:
> check out ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html
> and
> ftp://ftp.rubyriver.com/pub/jhardin/masquerade/VPN-howto/VPN-Masquerade.html
Can anyone offer a comparison in terms of performance and security
between the strategy described above ("multi-channel" protocols") and
a ppp-over-ssh strategy ("multi-layer" protocols)?
I'm using pppd over ssh2 and experiencing some alarming performance
problems.
Thanks for any pointers or advice.
eric
--
"We come and go alone, why do they need to know?"
------------------------------
From: John Thompson <[EMAIL PROTECTED]>
Subject: Re: Running X remotely
Date: Thu, 12 Aug 1999 16:43:46 -0600
Charles Stack wrote:
> I just installed X-WinPro 5.1 on my windoze box in anticipation of
> connecting to my Linux box.
>
> Problem is, I haven't a clue on what I need to do to make it work. I'd
> appreciate help from anyone with experience is getting this to
> work...especially with X-WinPro.
I don't have any experience with X-WinPro but I am using
XFree86-OS/2 to run this session remotely from a linux
machine. I suspect the method should probably be similar:
point the local X server (X-WinPro, in your case) to the
linux machine. In my case I do "XF86_S3.EXE -query
starfleet -once" where "XF86_S3.EXE" is the oS/2 x server
and "starfleet" is the name of the linux machine.
--
-John ([EMAIL PROTECTED])
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.hardware,comp.os.linux.setup,linux.redhat.axp
Subject: tulip switches to AUI media when network down
Date: Thu, 12 Aug 1999 22:19:17 GMT
i've got a couple of machines with Digital DC21040 Tulip cards
that've got 10baseT, AUI and BNC connectors. whenever we
experience a power failure, these machines' NICs switch to
AUI media.
short of replacing the cards, is there any way to stop them
from switching media? ifconfig doesn't seem to have any
options.
thanks,
sasha
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Guy Lancaster <[EMAIL PROTECTED]>
Subject: Re: IPIP Tunnelling "Network is Unreachable"
Date: Thu, 12 Aug 1999 15:02:08 -0500
David Nillesen wrote:
> I follow the instructions in the NET-3-HOWTO on how to esatablish a
> tunnel. I make sure i have the ipip module oaded. I bring up the ethernet
> interface. Then i bring up the tunnel with ifconfig tunl0 aaa.bbb.ccc.ddd i try
> and establish the route with:
> route add -net 192.168.1.0/24 gw 10.2.0.1 tunl0
> (just like it says)
> and i get "SICOADDRT: Network is unreachable" or something similar.
> I do have a route set to 10.2.0.1 and i can ping it.
> The ipip module is also loaded on the other end of the tunnel.
> It's like it is trying to use the tunl0 as a device instead of a tunnel.
>
> I am running RedHat 6.0 with the latest "official" kernel and two
> via-rhine NIC's.
You have hopefully already found your answers but in case you haven't, it seems
that the new kernel 2.2 has changed things and the documents haven't caught up.
You'll probably find that when you created the tunl0 interface, that you
automatically got a network route for it. This will conflict with with the next
step so remove it.
route del -net aaa.bbb.ccc.ddd/24 tunl0
Then you need to add a route to the remote gateway, then add the tunnel route, and
finally remove the route to the gateway.
route add -host 10.2.0.1 tunl0
route add -net 192.168.1.0/24 gw 10.2.0.1 tunl0
route del -host 10.2.0.1 tunl0
This seems to work. Does anybody know why these strange steps are required (if
indeed they are)?
In finding this out, I came across references to a program called ip that seems to
be easier to use for this.
(http://snafu.freedom.org/linux2.2/tunnel-notes.html). Anybody know what this is?
Thanks.
Guy
------------------------------
From: Sean <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.x
Subject: Weird colors in X and Modem Problem
Date: Thu, 12 Aug 1999 22:30:58 GMT
First X with KDE and the Voodoo3 XFree86 X server SOMETIMES displays wierd
colors or has only a few linmes at the top of the screen. I'm running
Mandrake 6.0 which I hear is very close to RedHat 6.0. This only applies
to 16bit color modes (and up I think) not when I just type startx. I have
to restart X with startx -- -bpp 16 several time before I can get it to
work with the righjt display. If anyone could help me with this it would
help greatly.
Secoundly my modem which isn't a winmodem because it's too old (33.6) and
it has a slew of jumpers on it. I don't even know what make it is but it
works fine in Win98 (uck!) as a generic 33.6 modem. And under Linux
running X11 and KDE with kppp I get it to dial connect and it says I'm
connected at 33600 but Netscape and the KDE browser type file manager both
say that I'm not connected. I read somewhere that I need to put some info
in a conf file and that info is some what like xxx.xxx.xxx.xxx and I can
find it out in windows. But where? I'm obviously a newbie to Linux.
I've had it for 2 days.
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: Scott Shoemaker <[EMAIL PROTECTED]>
Subject: all networking stops working for no reason
Date: Thu, 12 Aug 1999 22:03:29 GMT
Please Help!!! I am running RH 6.0 on a new Intel box that I have not
put into production use yet, because I have a problem where I am unable
to keep the server on the network for an extended period of time. From
the point that the server starts it will stay on the network from a few
minutes to a few hours, and then mysteriously drops ALL network access.
I have tried replacing all of the cabling and the NIC in the server and
I still have the same result. I even went as far to swap out the
network switch that I was using. I can reboot the server and it will
stay up for awhile. After doing some testing, I have found that as long
as the server seems to be doing something on the network, that it tends
to stay up longer. I.E. -- I set up a continuous ping to the gateway
router and found that the server stayed up much longer (all night) than
if it were sitting doing nothing.
Here is some additional information.
1. I am running samba and netatalk which both seem to be working fine
when the server has not dropped access.
2. When the server slips off of the network, it disappears from the
Apple network, and I am unable to ping the server from a client or vice
versa via TCP/IP. I am able to ping the server from the server itself,
and the Network Configurator says that the interface is active. The
activity lights on the both ethernet cards that I have tried to use on
this server do not flash after the network access hangs up.
3. When I do a netstat -r from the server, I see the same information
before and after it hangs, but after it hangs, the last line in the
table (the default gateway) takes a little longer to show up sometimes
(but it eventually does). It looks like the following:
destination gateway genmask flags mss window irtt iface
198.213.30.9 * 255.255.255.255 UH 0 0 0 eth0
198.213.30.0 * 255.255.255.0 U 0 0 0 eth0
127.0.0.1 * 255.0.0.0 U 0 0 0 l0
default 198.213.30.1 0.0.0.0 UG 0 0 0 eth0
4. I am having no other trouble with any of the other devices (about 75
devices) on the same network.
I am really confused as to why this is happening and what to try next.
I was unable to find any documentation on this particular issue and I
would appreciate any input.
Thanks in advance for your help!
Scott
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED]
Subject: Summary: networking core dumps
Date: Thu, 12 Aug 1999 17:07:32 GMT
In article <[EMAIL PROTECTED]>,
Ralph Spitzner <[EMAIL PROTECTED]> wrote:
> [EMAIL PROTECTED] wrote:
> >Hello,
> > I seem to be getting core dumps everytime I do a telnet or ftp
to a
> >named host (not the ones specified in my hosts file). I can telnet
or
> >ftp to an IP address. I can't even ping a named host!
> > Now I do have dns set up and nslookup works. My nsswitch.conf
file
> >points to dns for host lookup.
> > I am using redhat 6.0.
> > Does anyone have any idea why telnet/ftp/ping dumps core?
>
> You probably have a 'left over' nsslib somewhere in /lib, /usr/lib or
> /usr/local/lib.
>
> Fastest (without thinking) solution:
> Save all data you need from that machine.
> Format drive.
> Reinstall RedHat (the problem you are describing doesn't origin in RH)
>
> -rasp
>
Thank you! I re-installed redhat and it works. But just what is
nsslib? I tried looking for it before, and there was no nsslib.
There was just the /etc/nsswitch file.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (Gernot Fink)
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Subject: Re: route problem: Can't add gateway address
Date: 12 Aug 1999 17:51:05 GMT
In article <[EMAIL PROTECTED]>,
Youjip Won <[EMAIL PROTECTED]> writes:
> Dear Linux guru,
> I am fan of linux, but never ever able to get the network setup in
> one shot. This time was not an exception. After several trials and
> errors, I am finally writing this message in a hope that I could get
> some help.
>
> To make long story short, I cannot add gateway to routing table.
>
> Here's what had happened. I can ifconfig and route add 'lo' and 'etho'.
> When I do "route add default gw 166.104.88.1", it does not complain.
> BUT, if I type 'route' to verify the gw in routing table, it goes to the
> infinite loop. It only shows the first two lines in routing table(lo,
try route -n (no name resolving)
> eth0) and goes into infinite loop. I eagerly hope that someone have had
> similar problems and provide me some clue.
> Please refer to the attached script.
> Thanks a mil!!!!
>
> Youjip
>
> Script started on Thu Aug 12 21:40:56 1999
> [root@sobaek network-scripts]# ifconfig
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> [root@sobaek network-scripts]# ifconfig lo 127.0.0.1
> [root@sobaek network-scripts]# route add -net 127.0.0.0
> [root@sobaek network-scripts]# ifconfig etho 166.104.88.108
> [root@sobaek network-scripts]# route add -net 166.104.88.0
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 127.0.0.0 * 255.255.255.0 U 0 0 0
> lo
> 166.104.88.0 * 255.255.255.0 U 0 0 0
> eth0
> [root@sobaek network-scripts]# route add gw 166.104.88.1
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 127.0.0.0 * 255.255.255.0 U 0 0 0
> lo
> 166.104.88.0 * 255.255.255.0 U 0 0 0
> eth0
> ===> Goes to infinite loop
>
>
--
MFG G.Fink
------------------------------
From: "Robert Mullen" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Compaq Deskpro DP2000
Date: Thu, 12 Aug 1999 15:17:51 -0700
I am having trouble getting an Etherlink ISA 16 NE2000 compatible NIC to
work in a Compaq Deskpro DP 2000. This is one of those Compaq's that has the
riser that you mount your cards to and I am curious if that is the problem.
During installation (tried Cal 2.2, Mandrake 6, and SusE 6.1) I just get a
message saying that the card cannot be found. I get this message whether I
use autoprobe or specify the correct IRQ and I/0. I know everything works
because the machine was successfully working on Win 95 before and we have
changed nothing. Any help would be greatly appreciated.
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: Local network
Date: Thu, 12 Aug 1999 13:46:41 -0500
This is a multi-part message in MIME format.
==============51554CDE45643BDF56CFDC88
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
You didn't say wheather you could ping 192.168.1.2 from any of the other
machines, but if you can't I would suspect a driver problem. If thats the case,
try recompiling the driver. Also you can try typing 'ifconfig' at the prompt
and see what it tells you. It should report the status and IP address of all
network interfaces including the 'lo' interface.
Dan Malcolm
[EMAIL PROTECTED]
Erlend Stromsvik wrote:
> I have 4 PC's at home and I want to run a network between them.
> I have Win98 installed on 3 of those PC's and Red Hat 6 on the last one.
> The only problem is that I cant get the Linux box to get access to the
> network. I can't ping any of the other machines but I'm able to ping my
> network card which has ip : 192.168.1.2
>
> The other machines has 192.168.1.1, .3 and .4 and they haven't got any
> problem communicating with each other.
>
> Netmask is 255.255.255.0
> Network is 192.168.1.0 (-duh :)
>
> By the way... I have a Compaq Netflex card and the driver/module for it is
> called ThunderLan or TLAN... I think maybe there is some problem there but I
> did use that card on another pc with Red Hat 5.2
> I get an message saying : " trying TLAN : eth0 : autonegotiation" -I got
> pissed off from this msg and commented it out from the source and recompiled
> the module.
>
> It shouldn't be so hard setting up a local network but this time I'm
> lost.... -help!!
>
> stromsvik
==============51554CDE45643BDF56CFDC88
Content-Type: text/x-vcard; charset=us-ascii;
name="dmalcolm.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for dmalcolm
Content-Disposition: attachment;
filename="dmalcolm.vcf"
begin:vcard
n:Malcolm;Dan
tel;fax:256-895-9934
tel;home:256-772-3109
tel;work:256-722-2840
x-mozilla-html:FALSE
org:Home
adr:;;1308 Nolan Court;Madison;AL;35758;
version:2.1
email;internet:[EMAIL PROTECTED]
title:Software Engineer/SysAdmin
x-mozilla-cpt:;25680
fn:Dan Malcolm
end:vcard
==============51554CDE45643BDF56CFDC88==
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Subject: Re: route problem: Can't add gateway address
Date: Thu, 12 Aug 1999 22:49:20 GMT
In article <[EMAIL PROTECTED]>,
Youjip Won <[EMAIL PROTECTED]> wrote:
> Dear Linux guru,
> I am fan of linux, but never ever able to get the network setup in
> one shot. This time was not an exception. After several trials and
> errors, I am finally writing this message in a hope that I could get
> some help.
>
> To make long story short, I cannot add gateway to routing table.
>
> Here's what had happened. I can ifconfig and route add 'lo' and
'etho'.
> When I do "route add default gw 166.104.88.1", it does not complain.
> BUT, if I type 'route' to verify the gw in routing table, it goes to
the
> infinite loop. It only shows the first two lines in routing table(lo,
> eth0) and goes into infinite loop. I eagerly hope that someone have
had
> similar problems and provide me some clue.
> Please refer to the attached script.
> Thanks a mil!!!!
>
> Youjip
>
> Script started on Thu Aug 12 21:40:56 1999
> [root@sobaek network-scripts]# ifconfig
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref
Use
> Iface
> [root@sobaek network-scripts]# ifconfig lo 127.0.0.1
> [root@sobaek network-scripts]# route add -net 127.0.0.0
> [root@sobaek network-scripts]# ifconfig etho 166.104.88.108
> [root@sobaek network-scripts]# route add -net 166.104.88.0
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref
Use
> Iface
> 127.0.0.0 * 255.255.255.0 U 0 0
0
> lo
> 166.104.88.0 * 255.255.255.0 U 0 0
0
> eth0
> [root@sobaek network-scripts]# route add gw 166.104.88.1
> [root@sobaek network-scripts]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref
Use
> Iface
> 127.0.0.0 * 255.255.255.0 U 0 0
0
> lo
> 166.104.88.0 * 255.255.255.0 U 0 0
0
> eth0
> ===> Goes to infinite loop
>
>
<DISCLAIMER>I am not a networking expert</DISCLAIMER>
Do you need a default gateway if you are only configuring one interface?
There shouldn't be much confusion about where to send packets if there's
just the ethernet. If you're trying to configure a ppp interface, then
just add the "defaultroute" option to the pppd command line.
The Networking HOWTO can be found at http://metalab.unc.edu/LDP/ and has
recently been updated. Have a look in there and I'm sure you'll find
helpful information.
Cheers!
Syd.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Marshall" <[EMAIL PROTECTED]>
Subject: 3COM / USR fan ?
Date: Thu, 12 Aug 1999 14:32:12 -0400
The full story
http://www.news.com/News/Item/0,4,40386,00.html?st.ne.fd.gif.d
"3Com's woes may also involve differences between the "back-end" networking
infrastructure employed by US Robotics--a company acquired by 3Com in
1997--and the modems developed internally at 3Com, sources said."
ROFMLOL *wipes tears of laughter from eyes* ROFMLOL *picks self off
floor, stumbles, goes into another round of* ROFMLOL
*sighs* *thinks that it is too bad that 3com bought USR and destroyed it..*
------------------------------
From: "Cameron Newton" <[EMAIL PROTECTED]>
Subject: Setting up Linux PPP to connect to Prodigy Internet
Date: Thu, 12 Aug 1999 13:35:03 -0500
Hello,
I am trying to set up Linux PPP to connect to Prodigy Internet. If anyone
reading this has done so, please tell me how it is done. I cannot get a
connection.
Thanks,
Cameron Newton
(please reply via email also)
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: send mail from linux from behind a firewall
Date: Thu, 12 Aug 1999 13:52:42 -0500
This is a multi-part message in MIME format.
==============2043D2AAEBED9333F3C8C140
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Your problem has to do with the firewall. Sendmail uses port 25 and
tcp/udp protocols over ethernet. If you can't send e-mail to the outside
world, your firewall addmistrator has that port blocked to traffic, and you
will need to get him to open it. Good luck getting him to open up his
firewall.
Dan Malcolm
[EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
> I have a linux that is running sendmail (stock redhat install) and is
> behind the firewall at work and I would like to be able to send mail to
> email addresses outside of the network (to anyone, anywhere). I know
> there is a way to do this, but I'm not a sendmail or dns expert. We've
> got a few novell servers (they run the local mailserver) and an nt
> firewall. Is there an easy way to do this (without messing with the
> novell servers)? Thanks.
>
> Sent via Deja.com http://www.deja.com/
> Share what you know. Learn what you don't.
==============2043D2AAEBED9333F3C8C140
Content-Type: text/x-vcard; charset=us-ascii;
name="dmalcolm.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for dmalcolm
Content-Disposition: attachment;
filename="dmalcolm.vcf"
begin:vcard
n:Malcolm;Dan
tel;fax:256-895-9934
tel;home:256-772-3109
tel;work:256-722-2840
x-mozilla-html:FALSE
org:Home
adr:;;1308 Nolan Court;Madison;AL;35758;
version:2.1
email;internet:[EMAIL PROTECTED]
title:Software Engineer/SysAdmin
x-mozilla-cpt:;25680
fn:Dan Malcolm
end:vcard
==============2043D2AAEBED9333F3C8C140==
------------------------------
From: "sham khalil" <[EMAIL PROTECTED]>
Subject: Re: how does my dns
Date: 12 Aug 1999 23:29:10 GMT
the reverse file supposed to tell the name of pc with a given ip address.
if u have deleted the file then how could the dns know the name of the pc.
sham khalil
[EMAIL PROTECTED] wrote in article <7otn84$gb2$[EMAIL PROTECTED]>...
> I have two machine, one is mail server,installed redhat 6.0, another
> is dns server ,installed redhat 5.1,Now happened a strange thing.
> If I set reverse dns in dns server, the mail server can run nslookup
> normally. but if I delete reverse dns in dns server.
> when I run nslookup in mail server, it is below:
> $ nslookup
> *** Can't find server name for address 202.96.63.162: Non-existent
> host/domain
> *** Default servers are not available
> Why? Please help me
>
>
> Sent via Deja.com http://www.deja.com/
> Share what you know. Learn what you don't.
>
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: Grabbing IP# automatically
Date: Thu, 12 Aug 1999 13:41:18 -0500
This is a multi-part message in MIME format.
==============8204F90B7DD373C45F38E4D6
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Try this as a shell script:
==============================================================================
LOCALIF="ppp0"
# Internal Interface
# This is the interface for your local network
# You shouldn't need to change anything in the rest of this section
LOCALIP=`ifconfig $LOCALIF | grep inet | cut -d : -f 2 | cut -d \ -f 1`
LOCALMASK=`ifconfig $LOCALIF | grep Mask | cut -d : -f 4`
LOCALNET="$LOCALIP/$LOCALMASK"
echo "Internal: $INTERNALNET"
echo "External: $LOCALNET"
===============================================================================
Compliment of Ian Hall-Beyer - this is a snippet from his ipchains script
Dan Malcolm
Habibie4m wrote:
> Hi,
>
> I am wondering if anyone has any Perl, C, or C++ script that will
> automatically grab an IP number once a PPP connection is established.
> Preferrably a C++ script.
>
> TIA.
>
> --
> [EMAIL PROTECTED]
>
> PS. Remove "4m" from e-mail address to enable reply.
==============8204F90B7DD373C45F38E4D6
Content-Type: text/x-vcard; charset=us-ascii;
name="dmalcolm.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for dmalcolm
Content-Disposition: attachment;
filename="dmalcolm.vcf"
begin:vcard
n:Malcolm;Dan
tel;fax:256-895-9934
tel;home:256-772-3109
tel;work:256-722-2840
x-mozilla-html:FALSE
org:Home
adr:;;1308 Nolan Court;Madison;AL;35758;
version:2.1
email;internet:[EMAIL PROTECTED]
title:Software Engineer/SysAdmin
x-mozilla-cpt:;25680
fn:Dan Malcolm
end:vcard
==============8204F90B7DD373C45F38E4D6==
------------------------------
From: "Robert C. Paulsen, Jr." <[EMAIL PROTECTED]>
Subject: Re: IP Chains specific rule
Date: Thu, 12 Aug 1999 18:18:19 -0500
dmalcolm wrote:
>
> Thanks Robert:
>
> After I posted the message I kept working at it and came up with
> $IPCHAINS -A forward -p tcp -s that-pesky-host -d 0/0 www -j DENY
>
> where $IPCHAINS is defined as /sbin/ipchains. Essetially I came up with
> what you suggested and it works
> very well. Thanks for the help.
>
> Dan
>
> Robert_Glover wrote:
>
> > try this
> >
> > ipchains -I forward 1 -p tcp -s that-pesky-host -d 0/0 80 -j REJECT
> >
> > dmalcolm wrote in message <[EMAIL PROTECTED]>...
> > I am running Slackware Linux 4.0 and have a masquerading firewall
> > running and working. I used cwrulug.Ian Hall-Beyer's script to get
> > everything running and it seems to be just fine. I need a specific
> > rule
> > to block http access for one specific internal IP address. I want to
> > leave other web services intact for that and all other internal IP's..
> >
> > Thanks.
> >
> > Dan Malcolm
> > [EMAIL PROTECTED]
I have a similar ipchains rule (also a pesky local host, a WIN2000 beta)
but I put it in the input chain instead of the forward chain. Why let it
in at all if you know up front that it will be denied/rejected? Also,
in my case I found that it was name server requests causing a problem so
I ended up with:
ipchains -I input -p udp -s the-pesky-host -d 0/0 53 -J REJECT
--
____________________________________________________________________
Robert Paulsen http://paulsen.home.texas.net
If my return address contains "ZAP." please remove it. Sorry for the
inconvenience but the unsolicited email is getting out of control.
------------------------------
From: Jonathan Bowman <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: ethernet problems and AMD79C974
Date: Thu, 12 Aug 1999 15:03:29 -0400
When activating my eth0 interface, the system responds, "eth0:
unknown interface." Using netcfg, I have added the eth0 interface,
specifying dhcp, and activate interface at boot time, but nothing else
(is this enough, since I am using dhcp?) I have also given netcfg the
nameserver addresses, and in "Routing" I have given the default gateway
address, and specified the device as "eth0." Is any of this wrong or
not enough?
The only problem I can see is perhaps with my ethernet card itself.
I have a Compaq Deskpro XL 575 with onboard ethernet (AMD79C974), which
uses the pcnet32 driver. When I select the driver to use (using
linuxconf), I do not see pcnet32 -- can I add this driver (which is in
my /lib/modules/net directory) without recompiling the kernel, or do I
not need this driver (I have tried ne2k-pci)? Any suggestions would be
helpful.
e-mail is preferable,
Jonathan Bowman
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
